CIA Annual Meeting LOOKING BACK…focused on the future.

Slides:



Advertisements
Similar presentations
Property Inventory Valuation Replacement Cost Value The amount it would take to replace property with like property of the same quality and construction.
Advertisements

Operational Risk Questionnaire
Appendix F: Common risk categories for the public sector Insert client-specific photo here.
Control and Accounting Information Systems
Control and Accounting Information Systems
Operational risk. Introduction During the early part of the decade, much of the focus was on techniques for measuring and managing market risk. As the.
Operational Risk ACSDA Leadership Forum ACSDA Leadership Forum New York City, USA - October 8-10, 2007 Diana Downward, DTCC.
Presented by Muhamad Abrar Bahaman W. Fatimatul Akmar Md. Hassan
Basel III.
Operational Risk Management & the Trinidad & Tobago Experience presented by Mr. Anthony Taitt, Trinidad & Tobago Central Depository.
IOR Scottish Chapter Annual Conference Glasgow Caledonian University – 1 st November 2013 Relevance of Operational Risk to the FCA Jill Savager Manager,
Sarbanes-Oxley Act. 2 What Is It? Act passed by Congress in response to the recent and continuing corporate scandals. Signed into law July 30, Established.
Assessing firm risk September 2012 Andrew Garbutt Director of Risk, SRA.
Security Controls – What Works
Operational risk management Margaret Guerquin, FSA, FCIA Canadian Institute of Actuaries 2006 General Meeting Chicago Confidential © 2006 Swiss Re All.
Chapter 7 Control and AIS Copyright © 2012 Pearson Education, Inc. publishing as Prentice Hall 7-1.
Measuring and Managing Operational Risk. 2 Assessing Operational Risk Exposure Required Process of Continuous Risk Assessment, Monitoring and Reporting.
18- 1 © 2006 The McGraw-Hill Companies, Inc., All Rights Reserved. Chapter 18 Integrated Audits of Internal Control (For Public Companies Under Sarbanes-Oxley.
Sanjay Goel, School of Business/Center for Information Forensics and Assurance University at Albany Proprietary Information 1 Unit Outline Information.
1 Operational Risk Management Member Education Series Seminar Indian Institute of Banking & Finance Nagpur November 2005.
Euseden INTERNAL AUDIT & ASSURANCE SERVICES.
Nature of an Integrated Audit
CORPORATE RISK MANAGEMENT & INSURANCE BY R P BLAH D.G.M. INCHARGE THE ORIENTAL INSURANCE COMPANY LIMITED REGIONAL OFFICE BHUBANESWAR.
1 Business Continuity and Compliance Working Together Kristy Justice, AVP WaMu Card Services 08/19/2008.
Electronic Banking BY Bahaa Abas Noor abo han. Definition * e-banking is defined as: …the automated delivery of new and traditional banking products and.
Operational Risk Chapter 18
Irish League of Credit Unions, 2012 W E L O O K A T T H I N G S D I F F E R E N T L Y Risk Management for Credit Unions September 2013 Risk Management.
Vendor Risk: Effective Management is Essential
Chapter 4 Internal Controls McGraw-Hill/Irwin
2008 Annual Meeting Assemblée annuelle Annual Meeting Assemblée annuelle Annual Meeting ● Assemblée annuelle 2008 Québec 2008 Annual.
Risk Assessments/Risk Appetite Judith Gruenbaum 1.
From Findings over KRIs to Process Control
Copyright T. Rowe Price. All rights reserved 1 Ms. Deborah D. Seidel of T. Rowe Price Financial Services Vice President and Manager of Compliance.
Chapter 5 Internal Control over Financial Reporting
CDS Operational Risk Management - October 28, 2005 Existing Methodologies for Operational Risk Mitigation - CDS’s ERM Program ACSDA Seminar - October 26.
Overview:  Different controls in an organization  Relationship between IT controls & financial controls  The Mega Process Leads  Application of COBIT.
v2 Climate Change Disclosure for Canadian Public Companies Barbara Hendrickson Corporate Reporting: Climate Change & Related Environmental Disclosures.
1 Meycor Solution for Basel II Operational Risk Management.
Richard F. Chambers, CIA, CGAP Vice President, IIA Learning Center The Institute of Internal Auditors.
1 BASEL II: ONE CREDIT ANALYST’S PERSPECTIVE Presented November 9, 2004 in Quito, Ecuador, on the occasion of the 10th anniversary celebration of ECUABILITY.
Risk Management & Corporate Governance 1. What is Risk?  Risk arises from uncertainty; but all uncertainties do not carry risk.  Possibility of an unfavorable.
2006 General Meeting Assemblée générale 2006 Chicago, Illinois 2006 General Meeting Assemblée générale 2006 Chicago, Illinois Canadian Institute of Actuaries.
Future of Credit Risk Management: Supervisory Approach to Basel II CIA Annual Meeting Session 4405 Ben Gully Director, Basel Implementation Division Office.
McGraw-Hill/Irwin © 2003 The McGraw-Hill Companies, Inc., All Rights Reserved. 6-1 Chapter 6 CHAPTER 6 INTERNAL CONTROL IN A FINANCIAL STATEMENT AUDIT.
IT Risks and Controls Revised on Content Internal Control  What is internal control?  Objectives of internal controls  Types of internal controls.
Section Topics Risk and control terminology Risk elements
ICA – 15 avril INTEGRATED RISK PROFILE RÉGIME DE RENTES DU MOUVEMENT DESJARDINS (RRMD)
McGraw-Hill/Irwin © The McGraw-Hill Companies 2010 Auditing Internal Control over Financial Reporting Chapter Seven.
1  The objective of operational risk management is the same as for credit, market and liquidity risks that is to find out the extent of the financial.
1 Techniques for Effectively Managing Credit Relationships: Achieving the “Right” Rating Next Page To Advance: Click Screen Anywhere or Click Next To Return.
Electronic Presentations in Microsoft ® PowerPoint ® Prepared by Brad MacDonald SIAST © 2003 McGraw-Hill Ryerson Limited.
Basel Committee Norms. Basel Framework Basel Committee set up in 1974 Objectives –Supervision must be adequate –No foreign bank should escape supervision.
Operational Risk. Introduction operational risk has proved to be an important cause of financial losses. Indeed, most financial disasters can be attributed.
18-1 Copyright © 2016 McGraw-Hill Education. All rights reserved. No reproduction or distribution without the prior written consent of McGraw-Hill Education.
Legal Considerations Members in Practice (MIP) Members in Business (MIB)
Deck 5 Accounting Information Systems Romney and Steinbart Linda Batch February 2012.
Legal Considerations Members in Practice (MIP) Members in Business (MIB)
Corliss Whitaker: Portfolio – Instructional Presentation Understanding BASEL II Concepts Author: Korki Whitaker Revised: 02/17/2007.
Management of Operational Risk. Regulatory Capital Perspective Credit Risk – Basel I (1987) Market Risk – (Amendment 1998) Credit Risk – Basel II (2005)
Lecture 5 Control and AIS Copyright © 2012 Pearson Education 7-1.
Risk Assessment: A Practical Guide to Assessing Operational Risk
Shared Services and Third Party Assurance: Panel May 19, 2016.
RISK MANAGEMENT SYSTEM
Factors to be considered for the Internal Auditors
Chris Lintern Co-operative Financial Services
BUSINESS CONTINUITY BY HUI ZHENG.
Chapter 4 Internal Controls McGraw-Hill/Irwin
Operational Risk.
Operational Risk Chapter 20
CAYMAN ISLANDS MONETARY AUTHORITY
Presentation transcript:

CIA Annual Meeting LOOKING BACK…focused on the future

Operational Risk Session 1602 LOOKING BACK…focused on the future Presenter Michel Desmarais Presenter Michel Desmarais

Operational Risk Session 1602 LOOKING BACK…focused on the future OPERATIONAL RISK

Operational Risk Session 1602 LOOKING BACK…focused on the future Development of a Framework for Managing Operational Risk

Operational Risk Session 1602 LOOKING BACK…focused on the future Table of contents o Introduction o Operational risk categories o Operational risk management framework o Conclusion

Operational Risk Session 1602 LOOKING BACK…focused on the future The risk universe for a life and health insurance company Reputational CreditOperational InsuranceStrategic LiquidityMarket

Operational Risk Session 1602 LOOKING BACK…focused on the future Risk Management Financial risks are generally well managed in life and health insurance companies because certain controls are set up, such as Investment policies Matching policies Pricing policies Etc…

Operational Risk Session 1602 LOOKING BACK…focused on the future Risk Management (cont’d) Operational risk is usually managed reactively (an event occurs and the company reacts by introducing a control). The goal of setting up an operational risk management framework is to manage operational risk proactively.

Operational Risk Session 1602 LOOKING BACK…focused on the future

Operational Risk Session 1602 LOOKING BACK…focused on the future Definition of Operational Risk Risk of inadequate or failed internal processes, people, and systems, or from external events resulting in loss, non- achievement of objectives or negative impact on reputation. It includes legal risk but excludes strategic and reputational risk. However, it does take into account the impact of failures that affect the achievement of strategic objectives and the company’s reputation.

Operational Risk Session 1602 LOOKING BACK…focused on the future XXX lost personal information on 3.9 millions of clients of YYY. Accusations are taken against managers of ABC Investment Securities. Investment Securities XYZ and his president must pay 2 millions of penalties. Examples of recent events resulting in operational losses:

Operational Risk Session 1602 LOOKING BACK…focused on the future Why is there so much talk about operational risk? Following the accounting scandals, certain laws were passed: Sarbanes-Oxley in the U.S. Bill 198 in Canada As well as the Basel II Accords that govern the world banking institutions and define the regulatory capital based on the management of credit risk, market risk and OPERATIONAL RISK

Operational Risk Session 1602 LOOKING BACK…focused on the future Basel II: 7 Operational Risk Categories 1. Internal fraud E.g.: unauthorized transactions; misappropriation of assets; forged signatures. 2. External fraud E.g.: robbery; stolen cheques; counterfeit money.

Operational Risk Session 1602 LOOKING BACK…focused on the future Basel II: 7 Operational Risk Categories (cont’d) 3. Employment practices and workplace safety E.g. organized labour activities, strikes; discrimination; general liability. 4. Clients, products and business practices E.g.: breach of privacy; money laundering; misuse of confidential information.

Operational Risk Session 1602 LOOKING BACK…focused on the future Basel II: 7 Operational Risk Categories (cont’d) 5. Damage to physical assets and public safety E.g.: natural disaster; terrorism; vandalism. 6. Business disruption and systems failures E.g.: breakdowns; software failure; utility disruption.

Operational Risk Session 1602 LOOKING BACK…focused on the future Basel II: 7 Operational Risk Categories (cont’d) 7. Execution, delivery and process management E.g.:data entry errors; missed deadline or responsibility; vendor disputes.

Operational Risk Session 1602 LOOKING BACK…focused on the future

Operational Risk Session 1602 LOOKING BACK…focused on the future What about life and health insurance companies? The Basel II Accords do not apply directly to life and health insurance companies. OSFI and Quebec’s AMF are considering the possibility of changing how the MCCSR is calculated to account for operational risk specifically rather than implicitly.

Operational Risk Session 1602 LOOKING BACK…focused on the future Important factors for setting up an operational risk management framework Framework and policies; RCSA program; Risk indicators; Database; Disclosure, communication and accountability.

Operational Risk Session 1602 LOOKING BACK…focused on the future Framework and policies Helps to control operational risk management through all business units. Gives managers and employees the tools they need to manage operational risk.

Operational Risk Session 1602 LOOKING BACK…focused on the future RCSA Program Risk and Control Self-Assessment. Helps people understand the risks the company is exposed to. Develops a better understanding and appreciation of the control environment.

Operational Risk Session 1602 LOOKING BACK…focused on the future RCSA Program Definition:ongoing process used by companies to identify and assess the risks inherent in their activities and the quality of the controls associated with these risks in order to establish the level of residual risk.

Operational Risk Session 1602 LOOKING BACK…focused on the future RCSA Program (cont’d) 6-Step Program 1. Identify and document the sector or line of business to be assessed 2. Assess the risk factors and identify the inherent risks

Operational Risk Session 1602 LOOKING BACK…focused on the future RCSA Program (cont’d) Risk factor Inherent risk Inherent operational activity that exposes the sector or line of business to risk Estimated level of OR without taking the pertinent controls into account

Operational Risk Session 1602 LOOKING BACK…focused on the future RCSA Program (cont’d) 3. Assess the inherent risks and their trends. Evaluation of the frequency and severity of each risk situation

Operational Risk Session 1602 LOOKING BACK…focused on the future RCSA Program (cont’d) 4. Document and assess the controls to determine their effectiveness Use of a COSO (Committee of Sponsoring Organisations), COCO, COBIT, etc. model. It is possible to evaluate controls at different levels, from control environnement to specific controls. When we evaluate specific controls, it is important to perform it with individuals having an in-depth knowledge of the operations and the control practices in place.

Operational Risk Session 1602 LOOKING BACK…focused on the future RCSA Program (cont’d) 5. Determine the residual risks Residual risk:Estimated level of OR after the impact of the pertinent controls

Operational Risk Session 1602 LOOKING BACK…focused on the future RCSA Program (cont’d)

Operational Risk Session 1602 LOOKING BACK…focused on the future

Operational Risk Session 1602 LOOKING BACK…focused on the future RCSA Program (cont’d) 6. Develop action plans for Definitely the most important step of the program. managing exposure to risks deemed unacceptable.

Operational Risk Session 1602 LOOKING BACK…focused on the future RCSA Program (cont’d) Program output 1. Risk profile (risk tables or maps) 2. Key risk indicators 3. In the longer term, optimization of the capital allocation process associated with operational risks

Operational Risk Session 1602 LOOKING BACK…focused on the future RCSA Program (cont’d) Roles and responsibilities The operational risk management function coordinates and facilitates the implementation of the RCSA program. The business lines lend their expertise to help identify and measure the risks and to assess the controls and their effectiveness. They also develop and carry out the action plans.

Operational Risk Session 1602 LOOKING BACK…focused on the future Risk Indicators Allow for proactive risk management Represent an important control tool Definition: element of information that reflects an assessment, observation or data used to identify or anticipate a risk, its trend or its probability of occurring. It’s important to determine the right indicators

Operational Risk Session 1602 LOOKING BACK…focused on the future Database Used to collect and document events that have generated operational losses Used to assess the company’s operational risks Used to document quasi-losses or prevented losses

Operational Risk Session 1602 LOOKING BACK…focused on the future Database (cont’d) Used to document operational deficiencies Used to model operational losses Used to develop key indicators May include data from external operational losses

Operational Risk Session 1602 LOOKING BACK…focused on the future Disclosure, communication and accountability Communication needs to go both ways: Top-down: Management sets tolerance limits Bottom-up: Managers and employees inform management of the risks and controls

Operational Risk Session 1602 LOOKING BACK…focused on the future Conclusion Key factors for setting up an operational risk management framework Buy-in of senior management Communication Risk report Framework and policies Time required: minimum 3 years

Operational Risk Session 1602 LOOKING BACK…focused on the future

Operational Risk Session 1602 LOOKING BACK…focused on the future QUESTIONS

Feedback: Privacy Policy Feedback
Do Not Sell My Personal Information
About project: SlidePlayer Terms of Service

© 2025 SlidePlayer.com. Inc. All rights reserved.